29 June 2021
2020
New Cyber Attack Campaign Leverages the COVID-19 Infodemic.
Pierluigi Paganini
https://securityaffairs.co/wordpress/98484/malware/covid-19-hacking-campaign.html
Excerpt:
ìResearchers from Cybaze Yoroi ZLab have spotted a new campaign exploiting the interest in coronavirus (COVID-19) evolution to spread malware.î
Raccoon Malware, a success case in the cybercrime ecosystem
Pierluigi Paganini
https://securityaffairs.co/wordpress/98379/malware/raccoon-malware-evolution.html
Excerpt:
ìRacoon malware, Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums.î
Increased monetization means more ransomware attacks
https://www.helpnetsecurity.com/2020/02/24/more-ransomware-attacks/
Excerpt:
ìOrganizations are detecting and containing attacks faster as the global median dwell time, defined as the duration between the start of a cyber intrusion and it being identified, was 56 days. This is 28% lower than the 78-day median observed in the previous year, according to FireEye.î
8.4 million: Number of DDoS attacks researchers saw last year alone
https://www.helpnetsecurity.com/2020/02/19/number-ddos-attacks/
Excerpt:
ìNetscout released the findings of its Threat Intelligence Report for the second half of 2019, which also incorporates insights from its 15th Annual Worldwide Infrastructure Security Report (WISR) survey.î
US Gas Pipeline Shut After Ransomware Attack
Phil Muncaster
https://www.infosecurity-magazine.com/news/us-gas-pipeline-shut-after/
Excerpt:
ìA US natural gas facility was forced to shut down operations for two days after becoming infected with commodity ransomware, the Department of Homeland Security (DHS) has revealed.î
Focus on cyber resilience increasing sharply as oil companies seek to protect their assets
https://www.helpnetsecurity.com/2020/02/18/cyber-resilience-oil-companies/
Excerpt:
ìCybersecurity has emerged as the top focus of upstream oil and gas companiesí digital investments, according to a report from Accenture.î
South Korea sees rise in smishing with coronavirus misinformation
Cho Mu-Hyun
https://www.zdnet.com/article/south-korea-sees-rise-in-smishing-with-coronavirus-misinformation/
Excerpt:
ìThe South Korean government has warned the public of a sharp rise in smishing attempts -- scam text messages -- that use misinformation about the novel coronavirus outbreak.î
Three Italian universities hacked by LulzSec_ITA collective
Pierluigi Paganini
Excerpt:
ìThe popular Italian hacktivist collective LulzSec ITA has announced via Twitter the hack of three Italian universities, highlighting the importance of the cybersecurity for our society.î
Cryptocurrency crime losses more than double to $4.5 billion in 2019
https://www.helpnetsecurity.com/2020/02/13/cryptocurrency-crime-losses/
Excerpt:
ìCryptocurrency users, exchanges and investors suffered $4.5 billion in crypto-related losses resulting from thefts, hacks, and fraud, a CipherTrace report reveals.î
Puerto Ricoís government fell victim to a $2.6M email phishing scam
Mix
https://thenextweb.com/security/2020/02/13/puerto-rico-phishing-scam/
Excerpt:
ìThe government of Puerto Rico has revealed it fell victim to an email phishing scam, with the attackers making off with more than $2.6 million in stolen funds.î
Data about inmates and jail staff spilled by leaky prison app
Lisa Vaas
Excerpt:
ìInmatesí and correctional facilities employeesí data has been sloshed onto the web, unencrypted and unsecured, in yet another instance of a misconfigured cloud storage bucket.î
Malaysiaís MyCERT warns cyber espionage campaign carried out by APT40
Pierluigi Paganini
https://securityaffairs.co/wordpress/97582/apt/malaysias-mycert-apt40-attacks.html
Excerpt:
ìMalaysiaís Computer Emergency Response Team (MyCERT) warns of a cyber espionage campaign carried out by the China-linked APT40 group aimed at Malaysian government officials. The attackers aimed at stealing confidential documents from government systems after having infected them with malware.î
Malaysia warns of Chinese hacking campaign targeting government projects
Catalin Cimpanu
Excerpt:
ìA Chinese state-sponsored hacking group has been targeting Malaysian government officials, computer experts with the Malaysian government said on Wednesday.î
Coronavirus: China tightens social media censorship amid outbreak
Iris Deng
Excerpt:†
ìChinaís internet watchdog is tightening controls on social media platforms after a brief period of tolerance, as it cracks down on content that may sow fear and confusion amid the coronavirus crisis ì
CamuBot Banking Trojan Returns in Targeted Attacks
Lindsey O'Donnell
https://threatpost.com/camubot-banking-trojan-targeted-attacks/152604/
Excerpt:
ìThe malware is back in targeted attacks against Brazilian banking customers, this time using a new technique that involves mobile app authorization.î
New ransomware targets industrial control systems
Zeljka Zorz
https://www.helpnetsecurity.com/2020/02/04/ics-ransomware/
Excerpt:
ìWith the ransomware threat is surging unstoppably in the last few years, it was just a matter of time until ICS-specific ransomware became a reality.î
Wuhan coronavirus exploited to deliver malware, phishing, hoaxes
Zeljka Zorz
Excerpt:
ìThe Wuhan coronavirus continues to spread and create anxiety across the globe, allowing malicious individuals and groups to exploit the situation to spread fake news, malware and phishing emails.î
New ransomware targets industrial control systems
Zeljka Zorz
https://www.helpnetsecurity.com/2020/02/04/ics-ransomware/
Excerpt:
ìWith the ransomware threat is surging unstoppably in the last few years, it was just a matter of time until ICS-specific ransomware became a reality.î
Mobile data roaming traffic generated by consumer and IoT devices expected to surge
https://www.helpnetsecurity.com/2020/02/05/mobile-data-roaming-traffic/
Excerpt:
ìMobile data roaming traffic generated by consumer and IoT devices reached 737 Petabytes in 2019, according to Kaleido Intelligence. This is forecast to reach 2,000 Petabytes in 2024, representing an average annual growth of 22% over the period.î
Toll Group shuts down IT systems in response to 'cybersecurity incident'
Asha Barbaschow
Excerpt:
ìAustralian logistics company Toll last week suffered an "IT cybersecurity incident", forcing the shutdown of a number of customer-facing systems days later.î
NCA arrested six men in UK over Malta Bank Cyber-Heist
Pierluigi Paganini
https://securityaffairs.co/wordpress/97275/breaking-news/malta-bank-cyber-heist.html
Excerpt:
ìBritainís National Crime Agency (NCA) arrested six individuals in the United Kingdom because they are accused to be involved in a cyber-heist of a Malta bank and money laundering operation.The individuals are accused to be involved in the attack against the Bank of Valletta that took place in February 2019.î
Three principles regarding encryption you need to keep in mind
Pete Thurston
https://www.helpnetsecurity.com/2020/02/03/principles-encryption/
Excerpt:
ìEncryption is a popular topic among security professionals and occasionally a polarizing one. Plenty of misconceptions surround the process, and these often skew the way people perceive its complexity.î
Layering diverse defenses is crucial for stopping email attacks
Zeljka Zor
https://www.helpnetsecurity.com/2020/02/03/stopping-email-attacks/
Excerpt:
ìDespite heading a company that provides a technological solution for stopping targeted email attacks, Evan Reiser, CEO of Abnormal Security, knows that technology is not the complete answer to the malicious email problem.î
†